%0 Journal Article
%T Distributed network intrusion detection system based on Netfilter<br>基于Netfilter框架的分布式网络入侵检测系统
%A WU Zhong
%A LIU Yan-heng
%A TIAN Da-xin
%A ZHANG Yuan-yuan
%A <br>吴仲
%A 刘衍珩
%A 田大新
%A 张元媛
%J 计算机应用
%D 2007
%I 
%X The processing speed of Network Intrusion Detection systems (NIDS) is still low compared with the speed of networks. As a result, few NIDS are applicable in a high-speed network. A distributed NIDS for high-speed networks was presented in this paper. The overall traffic was divided into small slices based on Netfilter, and the algorithm of load balancing was given to ensure that a single slice contained all the necessary evidence to detect a specific attack. The results of experiments show that the packets are almost equally scattered to all NIDS, and the percentage of missed rate declined to 1/4 of single NIDS.
%K Network Intrusion Detection System (NIDS)
%K distributed
%K Netfilter
%K load balancing<br>网络入侵检测系统
%K 分布式
%K Netfilter
%K 负载均衡
%K Netfilter
%K 框架
%K 分布式
%K 网络入侵
%K 检测系统
%K based
%K intrusion
%K detection
%K system
%K network
%K 漏检率
%K 实验
%K 特征集合
%K 分配
%K 数据包
%K 均衡算法
%K 负载
%K 增长
%K 网络通讯
%K 速度
%K 处理
%K NIDS
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=831E194C147C78FAAFCC50BC7ADD1732&aid=14E16CBD27430512EF17BD1B7E5E3C51&yid=A732AF04DDA03BB3&vid=DB817633AA4F79B9&iid=B31275AF3241DB2D&sid=FBB416F02256D8AA&eid=B7AB8E33F0FC19ED&journal_id=1001-9081&journal_name=计算机应用&referenced_num=0&reference_num=16